mirror of
https://github.com/ansible-collections/community.general.git
synced 2024-09-14 20:13:21 +02:00
ce30e0732b
Add consul_policy module from dormant PR (#6715)
Squash commits to make rebasing easier
Co-authored-by: Valerio Poggi <vrpoggigmail.com>
(cherry picked from commit 33af903b24
)
Co-authored-by: Valerio Poggi <106782233+valeriopoggi@users.noreply.github.com>
67 lines
No EOL
1.5 KiB
YAML
67 lines
No EOL
1.5 KiB
YAML
---
|
|
# Copyright (c) Ansible Project
|
|
# GNU General Public License v3.0+ (see LICENSES/GPL-3.0-or-later.txt or https://www.gnu.org/licenses/gpl-3.0.txt)
|
|
# SPDX-License-Identifier: GPL-3.0-or-later
|
|
|
|
- name: Create a policy with rules
|
|
consul_policy:
|
|
name: foo-access
|
|
rules: |
|
|
key "foo" {
|
|
policy = "read"
|
|
}
|
|
key "private/foo" {
|
|
policy = "deny"
|
|
}
|
|
token: "{{ consul_management_token }}"
|
|
register: result
|
|
|
|
- assert:
|
|
that:
|
|
- result is changed
|
|
- result['policy']['Name'] == 'foo-access'
|
|
- name: Update the rules associated to a policy
|
|
consul_policy:
|
|
name: foo-access
|
|
rules: |
|
|
key "foo" {
|
|
policy = "read"
|
|
}
|
|
key "private/foo" {
|
|
policy = "deny"
|
|
}
|
|
event "bbq" {
|
|
policy = "write"
|
|
}
|
|
token: "{{ consul_management_token }}"
|
|
register: result
|
|
- assert:
|
|
that:
|
|
- result is changed
|
|
- name: Update reports not changed when updating again without changes
|
|
consul_policy:
|
|
name: foo-access
|
|
rules: |
|
|
key "foo" {
|
|
policy = "read"
|
|
}
|
|
key "private/foo" {
|
|
policy = "deny"
|
|
}
|
|
event "bbq" {
|
|
policy = "write"
|
|
}
|
|
token: "{{ consul_management_token }}"
|
|
register: result
|
|
- assert:
|
|
that:
|
|
- result is not changed
|
|
- name: Remove a policy
|
|
consul_policy:
|
|
name: foo-access
|
|
token: "{{ consul_management_token }}"
|
|
state: absent
|
|
register: result
|
|
- assert:
|
|
that:
|
|
- result is changed |